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Abstract 

In recent years the question of whether adding the limited principle of omniscience, 
LPO, to constructive Zermelo-Fraenkel set theory, CZF, increases its strength has 
arisen several times. As the addition of excluded middle for atomic formulae to CZF 
results in a rather strong theory, i.e. much stronger than classical Zermelo set theory, 
it is not obvious that its augmentation by LPO would be proof-theoretically benign. 
The purpose of this paper is to show that CZF + RDC + LPO has indeed the same 
strength as CZF, where RDC stands for relativized dependent choice. In particular, 
these theories prove the same IT!] theorems of arithmetic. 
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1 Introduction 

Constructive Set Theory was introduced by John Myhill in a seminal paper |10j . where 
a specific axiom system CST was introduced. Through developing constructive set the- 
ory he wanted to isolate the principles underlying Bishop's conception of what sets and 
functions are, and he wanted "these principles to be such as to make the process of for- 
malization completely trivial, as it is in the classical case" ([10J, p. 347). MyhiU's CST 
was subsequently modified by Aczel and the resulting theory was called Zermelo-Fraenkel 
set theory, CZF. A hallmark of this theory is that it possesses a type-theoretic interpre- 
tation (cf. [HE]). Specifically, CZF has a scheme called Subset Collection Axiom (which 
is a generalization of Myhill's Exponentiation Axiom) whose formalization was directly 
inspired by the type-theoretic interpretation. 

Certain basic principles of classical mathematics are taboo for the constructive math- 
ematician. Bishop called them principles of omniscience. The limited principle of om- 
niscience, LPO, is an instance of the law of excluded middle which usually serves as a 
line of demarcation, separating "constructive" from "non-constructive" theories. Over the 
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last few years the question of whether adding LPO to constructive Zermelo-Fraenkel set 
theory increases its strength has arisen several times. As the addition of excluded middle 
for atomic formulae to CZF results in a rather strong theory, i.e. much stronger than 
classical Zermelo set theory, it is not obvious that its augmentation by LPO would be 
proof-theoretically benign. The purpose of this paper is to show that CZF + RDC + LPO 
has indeed the same strength as CZF, where RDC stands for relativized dependent choice. 
In particular, these theories prove the same IlS] theorems of arithmetic. The main tool will 
be a realizability model for CZF + RDC + LPO that is based on recursion in a type-2 
object. This realizability interpretation is shown to be formalizable in the theory of bar 
induction, BI, which is known to have the same strength as CZF. 

To begin with we recall some principles of omniscience. Let 2 N be Cantor space, i.e 
the set of all functions from the naturals into {0, 1}. 

Definition 1.1 Limited Principle of Omniscience (LPO): 

V/ G 2 N [3n f(n) = 1 V Vn f{n) = 0]. 
Lesser Limited Principle of Omniscience (LLPO): 

V/ G 2 N (Vn,m[/(n) = f(m) = 1 -> n = m] -> [Vn/(2n) = V Vn f(2n + 1) = 0]). 

LPO is incompatible with both Brouwerian mathematics and Russian constructivism. 
With LLPO the story is more complicated as it is by and large compatible with Rus- 
sian constructivism, namely with the form of Church Thesis saying that every function 
from naturals to naturals is computable (recursive) even on the basis of full intuitionistic 
Zermelo-Fraenkel set theory (see [3]). 

2 The theory BI 

In the presentation of subsystems of second order arithmetic we follow [15]. By £2 we 
denote the language of these theories. ACAo denotes the theory of arithmetical compre- 
hension. 

Definition 2.1 For a 2-place relation -< and an arbitrary formula F(a) of £2 we define 
Prog(^;,i ? ) := Vr[Vy(y -< x — > F(y)) — > F(x)] (progressiveness) 
TI(^,F) := Prog(-<,i ? ) — > \/xF(x) (transfinite induction) 
WF(^) :=VXTI(^,X) : = 

VX(Va;[Vy(y -< x — >■ y G X)) — > x G X] — > Vx[x G X]) (well-foundedness). 

Let T be any collection of formula? of £2- For a 2-place relation -< we will write -<G J 7 , if 
-< is defined by a formula Q(x, y) of T via x ~< y := Q(x, y). 

The bar induction scheme is the collection of all formulas of the form 

WF(^) -> TIKF), 
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where -< is an arithmetical relation (set parameters allowed) and F is an arbitrary formula 
of£ 2 - 

The theory ACAo + bar induction will be denoted by BI. In Simpson's book the 
acronym used for bar induction is II^-TIo (cf. [151 §VII.2]). 

Theorem 2.2 The following theories have the same proof-theoretic strength: 
(i) BI 

(a) czf 

(Hi) The theory IDi of (non-iterated) arithmetical inductive definitions. 

There is an interesting other way of characterizing BI which uses the notion of a 
countable coded w-model. 

Definition 2.3 Let T be a theory in the language of second order arithmetic, L 2 . A 
countable coded co-model of T is a set W C N, viewed as encoding the L2-model 

M= (N,«S,+,-,0,l,<) 

with S = {{W) n | n G N} such that M\=T (where (W) n = {m \ (n,m) G W}; (,) some 
coding function). 

This definition can be made in RCAo (see [15] , Definition VII. 2). 

We write X H3nX = (W) n . 

Theorem 2.4 BI proves co-model reflection, i.e., for every formula F(X\, . . . ,X n ) with 
all free second order variables exhibited, 

BI h F(X lt ...,X n ) -» 3M[M countable coded u model o/ACA A X G M A M |= F(X).} 
Proof: H3 Lemma VIII.5. 2]. □ 

Definition 2.5 The scheme of Sj-AC is the collection of all formulae 

Vx3XF(x,X) -)■ 3YVxF(x,{Y) x ) 
with F(x, X) of complexity £}. 

Corollary 2.6 BI proves that for every set X there exists a countable coded to-model of 
ACAo + S}-AC containing X. In particular, BI proves E}-AC and A\- comprehension. 

Proof: Suppose Vx 3X F(x, X, U ). Then there exists a countable coded w-model M = 
(N,«S,+, -,0,1, <) with U G M and M |= Mx 3X F(x, X, U ). Let S = {(W) n \ n G N}. 
Define f{n) = m if M |= F(n, (W) m ) and for all k < m M (= -iF(n, (WOfc). Put K := 
{(n, x) | x G (W)/ (n )}. We then have M \= F(n, (Y) n , U ) for all n. Since F is it follows 
that F(n, (Y) n ,U) holds for all n. This shows S}-AC. 

To show that for any set Z there is an w-model of S^-AC containing Z just note that 
ACAo + S}-AC is finitely axiomatizable. 

Aj-comprehension is a consequence of Sj-AC. □ 
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Lemma 2.7 Let A(X) be an arithmetic formula and F{x) be an arbitrary formula of £2- 
Let A(F) be the formula that arises from A{X) by replacing every subformula t G A by 
F(t) (avoiding variable clashes, of course). Then we have 

BI h VJi(l) -»• A(F) . 

Proof: Arguing in BI suppose that —^A(F). Pick an w-model M of ACAo containing 
all parameters from A and F such that M |= —iA(F). Letting U = {n | M |= F(n)} we 
have —>A(U) because A is an arithmetic formula and M is absolute for such formulae on 
account of being an w-model. Thus we have shown 

BI h -<A(F) -> 3X -.A(X) 

from which the desired assertion follows. □ 



3 Inductive definitions in BI 

Definition 3.1 Let A(x,X) be an arithmetic formula in which the variable X occurs 
positively. Henceforth we shall convey this by writing A(x,X + ). 
Define 

U (it) :«» VA[VxL4(x,A) -> x G X) -> u G X] . (1) 

We write l A C F for Vt> (L A (v) -> F(v)), and F Cl A for Vv (F(v) -> 

Lemma 3.2 XTie following are provable in BI /or every X -positive arithmetic formula 
A(x,X + ) and arbitrary £2 formula F(u). 

(i) Vu{A(u,I A ) -nt €La). 

Vx [A(x,F) ->• F(x)] ->• La C F 

(Hi) \/u (u G Ia — > -A(it, Ia))- 

Proof: (i): Assume A(-u,Ia) and Vx(^4(x,A) — >• x G A). The latter implies Ia Q X. 
Since A(u, Ia) holds, and owing to the positive occurrence of Ia in the latter formula, we 
have A(u,X). Since X was arbitrary, we conclude that La (it). 

(ii) : Suppose 1a(u). Then VA [Vx (A(x, X) — > x G A) — > u G A], and hence, using 
Lemma [2 .71 Vx (A(x, F) — > F(x)) —¥ F(u). Thus, assuming Vx (^4(x, F) — > F(x)), we have 
F(«). 

(iii) : Let F(v) :4=> A(y, Ia)- By (i) we have -F C La. Assuming A(k, F) it therefore 
follows that A(u,I A ) since -F occurs positively in the former formula, and hence F(u). 
Thus, in view of (ii), we get Ia Q F, confirming (iii). □ 
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4 Recursion in a type- 2 object 

Using the apparatus of inductive definitions, we would like to formalize in BI recursion in 
the type 2 object E : (N -> N) -> N with E(f) = n + 1 if /(n) = and Vi < n f(n) > 
and E(f) = if Vn/(n) > 0. 

In the formalization we basically follow [8, VI. 1.1]. We use some standard coding of 
tuples of natural numbers. The code of the empty tuple is (} := 1, and for any k > and 
tuple (mi, . . . , rrifc) let (mj, . . . m^} := p™ 1+l • . . . • P™ k+1 , where p, denotes the i-th prime 
number. 

Definition 4.1 Below Sbo denotes the primitive recursive function from J3|, 11.2.5] re- 
quired for what is traditionally called the S-m-n theorem. Let Comp E be the smallest class 
such that for all k, n,p, r, and s, all i < k and m = mi, . . . , in N, 

(0) ((0, k,0,n),m,n) G Comp E ; 
((0, k, 1, i), m, mi) G Comp E ; 
((0, fe, 2, i), m, ?Tij + 1) G Comp E ; 
((0, k + 3, 4),p, g, r, s, m,p) G Comp E if r = s; 
((0,k + 3,4},p,q,r,s,m,q) G Comp E i/r ^ s; 
({0,k + 2,5),p,q,m,Sb (p,q}) G Comp E ; 

(%) /or any k', b, Cq, ... , Cfc/_i, go, • • • , fe'-i N, i//or aZZ i <k! (q, m, &j) G Comp E and 
(&, q, n) G Comp E , i/ien 

((1, k,b,co, . . . , c fc /_i),m, n) G Comp E ; 

for any b G N, i/ (b,m,n) G Comp E , i/ien 

«2,fc + l),6,m,n) G Comp E . 

/or any b G N, if for all p G N i/iere exists k p G N uraf/i A; p > and (b,p,m,k p ) G 
Comp E , i/ien 

((3,Jfe,6),m,0> G Comp E . 

fS.Sj /or any 6,p G N, i/ (£>,p, m, 0) G Comp E ana 1 for all i < p there exists k, L G N wt/t 
fcj > and (b,i,m,k{) G Comp E , then 

«3,fc,6),m,p + l) G Comp E . 

Clearly Comp E is defined by a positive arithmetic inductive definition that we denote 
by A E , i.e., Comp E = 1^. 

Lemma 4.2 For all a, m G N i/iere is at most one n G N suc/i i/iai (a, m, n) G Comp E . 
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Proof: Define a class X by 

(a, m, n) E X iff {a, m, n) E Comp E and for all k E N, if {a, m, k) E Comp E , then n = k. 

By Lemma 13.21 (ii) we only have to show that X is closed under the clauses defining 
Comp E . This is a straightforward affair, albeit a bit tedious. □ 

We shall put to use this notion of computability for a realizability interpretation of 
CZF + LPO. This, however, will require that the computability relation be a set rather 
than a class such as Comp E . To achieve this we shall invoke Theorem 12.41 

Lemma 4.3 BI proves that there exists a countable coded u-model 93T of AC A such that 
the following hold. 

(i) Tl (= Vx, y, z [{x, y, z) E Comp E o ^((x, y, z), Comp E )]. 

(ii) 9Jt |= Vcc, y, z, z'[(x, y, z) E Comp E A (x, y, z') E Comp E — > z = z'\ . 

Proof: This follows from Lemma 13.21 and Lemma 14.21 using Theorem 12.41 □ 

We will fix a model 9Ut as in the previous Lemma for the remainder of the paper and 
shall write 

{a} E (m)~n o Wl \= (a, m, n) E Comp E . 

Note that this notion of computability hinges on 9Jt. More computations might con- 
verge in 9Jt than outside of 9K. 

5 Emulating a type structure in BI 

We would like to define a type-theoretic interpretation of CZF + RDC + LPO in BI. 
This will in a sense be similar to Aczel's interpretation of CZF in Martin-L6f type theory 
(cf. PQ). To this end, we initiate a simultaneous positive inductive definition of types U 
and their elements as well as non-elements, and also a type V of (of codes of) well-founded 
trees over U. The need for defining both elementhood and non-elementhood for types is 
necessitated by the requirement of positivity of the inductive definition. 

Below we use the pairing function j(n,m) = (n + m) 2 + n + 1 and its inverses ()o, ()i 
satisfying (j(n,m))o = n and (j(n,m))i = m. We will just write (n,m) for j(n,m). 

Definition 5.1 Let := (0, n), nat := (1,0), pl(n, m) := (2, (n, m)), o~(n,m) : = 
(3, (n, m)), ir(n,m) := (4, (n, m)), and sup(n, m) := (5, (n, m)). 

We inductively define classes U, EL,NEL and \ by the following clauses. Rather than 
(n, m) E EL and (n, m) E NEL we write n£m and n^m, respectively. 

1. nfq E U; if k < n then k E ra^; if k > n then k ^ npj- 

2. nat E U and n E nat for all n. 
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3. Ifn,m G U, then pl(n, m) G U. 

4- Assume pl(n,m) G U. 

If k£n, then (0, A;) € pl(n, m). If kGm, then (1, A) G pl(n, m). 

Ifk^n, then (0, A;) ^ pl(n, m). Ifk^m, then (l,k) $.p\(n,m). If k is neither of the 
form (0,3;) nor (1, x) /or some x, £/ien fc^pl(n, m). 

5. J/ngU and k(£n V 3x {{e} E (k) ~ x A x G U) ZioZds /or a/Z A, i/ien <r(n, e) G U. 

6\ Assume o~(n, e) G U. 

If k £n and 3x ({e} E (k) ~ x A u G x), i/ien (A;, n) G o"(n, e). 
If k£n or 3x ({e} E (k) ~ x A n ^ x), i/ten (A, n) ^ o~(n, e). 
If x is not of the form (u, v) for some u, v , then x ^ o~(n, e). 

7. // n G U and k^n V 3x ({e} E (k) ~ x A x G U) ZioZds /or a// A, i/ien 7r(n, e) G U. 

<§. Assume ir(n, e) G U. 

If k^n\l 3x, y ({e} E (k) ~ x A {dj^A) ~ y A y G x) /io/ds /or a// A, then d G 7r(n, e). 
If 3u (u G n A Vz ^{d} £ (n) ~ z) , then d ^ 7r(n, e) . 

// 3n 3x (n G n A {e} £ '(n) ~ x A 3z ({d} E (u) ~ z A z ^ x)), t/ien d ^ 7r(n, e). 
5. 7/n G U and A ^ n V 3x ({e} s (A) — x A x G V) /io/ds for all k, then sup(n, e) G V. 

Remark 5.2 Clearly, the predicates U, G , ^ and V all appear positively in the above 
inductive definition. Moreover, it falls under the scope of arithmeical inductive definitions 
and is therefore formalizable in our background theory BI. Note also that for this it was 
important to move from the Il\ computability notion of Definition 14.11 to .E-recursion in 
the w-model Wl. 

G and ^ are complementary in the following sense. 

Lemma 5.3 For all n G U, 

Vx (x G n -f-7- -ii^n). 

Proof: This can be proved by the induction principle of Lemma I3.2f ii) . □ 

Corollary 5.4 For each n G U, {x [ x G n} is a set. 

Proof: Note that G and ^ are Il\ as they are given by positive arithmetical inductive 
definitions. Since BI proves A}-comprehension by Corollary 12. Q\ it follows from Lemma 
15.31 that {x | x G n} is a set. □ 
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Definition 5.5 We shall use lower case Greek letters a, (3, 7, 5, . . . to range over elements 
ofV. 

Using the induction principle from Lemma \3.2tf ii). one readily shows that every a G V 
is of the form sup(n, e) with n G U and Vx G n {e} E (x) G V, where {e} E {x) G V is an 
abbreviation for 3y ({e} E (x) ~ y A y G V). 

If a = sup(n, e) we denote n by a and e by a. For i£a we shall denote by ai the 
unique x such that {a} E (i) ~ x. 

If p is an r + 1-ary partial ^-recursive function we denote by Xx.p(x,a) an index of 
the function x 1— > p(x,a) (say provided by the S-m-n theorem or parameter theorem). 

Lemma 5.6 There is a 2-ary partial E-recursive function = such that =(a,f3) is defined 
for all a, (3 G V and (writing in infix notation a=f3 for =(a,(3)) the following equation 
holds 

(a=f3) = a(ir(a, Xx.a(f3, Xy.(ax=f3y))), \z.ir(/3, Xy.a(a, Xx.(ax=f3y)))) . (2) 

Proof: Such a function can be defined by the recursion theorem for .E-recursion. Totality 
on V x V follows from the induction principle for V. □ 



6 Realizability 

We will introduce a realizability semantics for sentences of set theory with parameters from 
V. Bounded set quantifiers will be treated as quantifiers in their own right, i.e., bounded 
and unbounded quantifiers are treated as syntactically different kinds of quantifiers. Let 
a,/3 G V and e, f G N. We write e^j for {{e)i)j. 

Definition 6.1 (Kleene realizability over V) Below variables e,d range over natural 
numbers. We define 



e h a = f3 


iff 


eG (a=/3) 


e lh a G (3 


iff 


(e)oG^ A (e)i \\- a = 0(e) o 


e lh <ft A -0 


iff 


(e) lh- A (e)i lh 


elh <j) Vtf} 


iff 


[(e) = A (e)i lh <f>] V [(e) = 1 A (e)i lh V] 


e lh -.0 


iff 


yd -id lh 


e lh <p — > ip 


iff 


Vd[dU-<p ->• {e} £ (d) lh 0] 


e lh Vx G a (j)(x) 


iff 


ViGo {e} E (i) lh 0(m) 


e lh 3x G a <j){x) 


iff 


(e) G a A (e)i lh 0(5(e) o ) 


e lh Vx(J)(x) 


iff 


Va G V {e} £ (a) lh 0(a) 


e lh 3xcj)(x) 


iff 


(e) G V A (e)i lh 0((e) o ). 
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Theorem 6.2 ip(v\, . . . , v r ) be a formula of set theory with at most the free variables 
exhibited. If 

CZF + LPO + RDC h <p(v 1} ...,v r ) 

then one can explicitly construct (an index of) a partial E-recursive function f from that 
proof such that 

BI h Vai, . . . , a r G V f(a±, . . . , a r ) lh (f(ai, . . . , a r ). 

Proof: Realizability of the axioms of CZF + RDC is just a special case of realizability 
over an w-PCA + as described in |14[ Theorem 8.5] and is closely related to Aczel's [T] 
interpretation of CZF + RDC in type theory and the realizability interpretations of 
CZF + RDC presented in [12], [TTJ [13] . Note that to ensure realizability of Ao separation 
it is necessary that all types in U correspond to sets (Corollary I5.4[) . 

We shall thus only address the realizability of LPO. To avoid the niceties involved in 
coding functions in set theory, we shall demonstrate realizability of a more general type 
of statement which implies LPO on the basis of CZF: 

(*) (Vx G oj)[P(x) V R(x)] -> [(3x G uj)P{x) V (Vs G u)R(x)]. 

To see that (*) implies LPO assume that / G 2 N . Then let P(x) and R{x) stand for 
f{x) = 1 and f(x) = 0, respectively. 

Arguing in BI, we want to show that (*) is realizable. The first step is to single out the 
element of V that plays the role of the natural numbers in V. By the recursion theorem 
for £'-computability define a function g : N — > N with index d by {d} E (0) = sup(0n, Xx.x) 
and 

{d} E (n + 1) = sup((n + 1) N , d \ n) 

where d \ n is an index of the function g n : N — > N with g n {k) = {d} E (k) if k < n and 
9n(k) = otherwise. Finally, let 

oj = sup(nat, d). 

Then wEV and co realizably plays the role of the natural numbers in V. 
Now assume that 

e lh (Vx G u)[P(x) V R(x)]. (3) 
Unraveling the definition of ([3]) we get (Vi G Q){e} E (i) lh P{Gji) V R(£ji), whence 

(Vn G N){e} £ (n) lh P{uri) V R(Cbn). (4) 
From we get that for all n G N, 

[(/(n)) = A (/(n))! lh P(um)\ V [(/(n)) = 1 A tf(n)) x lh R(ojn)\, (5) 
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where f(n) = {e} E (n). There is an index b such that {b} E (n,x) = (f(n))o for all n,x. 
If there exists n such that (f(n))o = then by clause (3.2) of Definition 15.11 we get 
{(3,1,6)} E (0) = n + l where no is the smallest number such that (/(no))o = 0. Otherwise, 
by clause (3.1) of Definition 15.11 we have {(3, 1, b)} E (0) = 0. We also find an index c such 
that {c} E (k) = (n, (f(n))i) if k = n + 1 for some n and {c} E (k) = Xx.(f(x))i if k = 0. 
Let sg be the primitive recursive function with sg(n + 1) = 1 and sg(0) = 0. Then we have 

(sg({(3,l,6)} £ (0)), {c} E ({(3,l,b)} E (0))) Ih (3xGu)P(x) V (Vxeu)R(x). (6) 

Since there is an index b* such that {b*} E (e) ~ (sg({(3, 1, 6)} s (0)), {c} s ({(3, 1, 6>} B (0))) 
this ensures the realizability of (*). □ 
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